Poison

1141517192023

Comments

  • @madbro said:
    having an "event not found " while unzipping!! any idea?
    using unzip -p password zipfile.zip syntax
    please help

    maybe download it to your machine

    wirehack7

  • edited July 2018
    This box has me scratching my head (banging my head)... I know the service I'm looking for and I've used what I think is the method before to connect to a similar service on windows and I even get a connection although mostly grey screen with a terminal in the top corner but as regular user c***ix not root... I assume the secret file is the key but not sure what type of charset or algo I may be looking at? I'm thinking I need to use the user to tunnel through or am I off here? I think I'm close...
  • @3s073r1k said:
    This box has me scratching my head (banging my head)... I know the service I'm looking for and I've used what I think is the method before to connect to a similar service on windows and I even get a connection although mostly grey screen with a terminal in the top corner but as regular user c***ix not root... I assume the secret file is the key but not sure what type of charset or algo I may be looking at? I'm thinking I need to use the user to tunnel through or am I off here? I think I'm close...

    You're close, maybe its not an algo or charset look at the man page of the thing you're using to try and connect, then think about the file

  • edited July 2018
    Thanks for the tip... On my way to bed but I'll be reading some man pages in the a.m! Always appreciate a nudge... wondering if I should be using X*** or ***serv*r ?
    Hopefully that's not a spoiler...
  • edited July 2018

    @3s073r1k said:
    Thanks for the tip... On my way to bed but I'll be reading some man pages in the a.m! Always appreciate a nudge... wondering if I should be using X*** or **servr ?
    Hopefully that's not a spoiler...

    Hey ! I'm stuck at this same place . I have been using the v**v***wer via option without any luck.

  • I just woke up and about to try and Tackle this again, if I figure out anything I'll hit you up in a DM
  • 3 hours with nothing - how to do this -_-

    its hard so much i just find the encode file with 13 times

    and i can't do anything about it

    i tried ssh with it but nothing its says public key -_-

    i hope i got any hint from you guys ^.^ help me to go out of noobs area

  • If it is encoded x amount of times then you need to decode it amount of times... Figure out the encoding and it should be simple
  • @ashishjv1 said:
    Hey ! I'm stuck at this same place . I have been using the v**v***wer via option without any luck.

    If you find the answer let me know , maybe a push in the right direction
  • Hi, I am trying to do the impossible_password but when extracting the .zip file to a .bin when extracting the .bin it turns into .bin.cpgz opening that turns it back into a .bin.

    I'm using MacOSX archiver utility and downloaded The Unarchiver with no luck. Any help is much appreciated

  • edited July 2018

    @3s073r1k said:
    @ashishjv1 said:
    Hey ! I'm stuck at this same place . I have been using the v**v***wer via option without any luck.

    If you find the answer let me know , maybe a push in the right direction

    Hey ! I got root . I can say that you are in the right direction ! Just keep Going ! If you need more help PM me.
    :) :)

    And Thanks to @felli0t @Monkey23 for all the help !

  • Hey all, can someone PM me a hint for priv escalation PLEASE. I got on the box, extracted the secret, have an idea of which service to use it with but not sure how to use it. Been on this for 2 days now and its driving me crazy!

  • any hint to find the user name? i have that pwdbackup.txt , still working on to decode it.

    Hack The Box

  • got the service ..but dont know how to use it ...decoded the secret pasword .

  • Finally got root on this after a LOT of reading and perseverance. Great box. Happy with my first root on HTB!

  • edited July 2018

    @madbro said:
    having an "event not found " while unzipping!! any idea?
    using unzip -p password zipfile.zip syntax
    please help

    I had the same problem, solved it with a very rough solution of running python -m SimpleHTTPServer to pull it down and then push the extracted file back up, along with wget

    I still haven't been able to read the contents of the file inside ***.zip, I think that's the last thing I need to get root on this box, so if anyone wants to give me a hint on that, that would be awesome.

  • @MAX3D said:
    3 hours with nothing - how to do this -_-

    its hard so much i just find the encode file with 13 times

    and i can't do anything about it

    i tried ssh with it but nothing its says public key -_-

    i hope i got any hint from you guys ^.^ help me to go out of noobs area

    Once it's decoded enough (you'll know when you get there) and you have a username, look at what ports are open. You'll see how to connect then. That will help you get user, don't ask me about root, I'm so close but haven't quite gotten there yet on root myself.

  • @GinoKun said:
    Can someone pm me the tips? currently stuck after extracting the .zip and don't know what to do

    I pulled the zip down to my machine to extract it (python simplehttpserver and wget) but I can't help you with reading the file inside it, stuck there myself.

  • i can't do scp to poison, it gets stuck at 100% and doesn't complete. any ideas ?

    Hack The Box

  • edited July 2018

    Can someone give me a hint?
    found secret in .zip file figured out what to do but i cant use it in the given service

  • check what services running

    Arrexel
    OSCP | I'm not a rapper

  • Finally got root, special thanks to @lahirukkk for all the help! User was so easy, root was surprisingly hard until I realized I was running the commands in the wrong place!

  • @n0bf said:
    Finally got root, special thanks to @lahirukkk for all the help! User was so easy, root was surprisingly hard until I realized I was running the commands in the wrong place!

    congratz mate!!!

    lahirukkk

  • Can someone please PM me and help with my vnc syntax?

    Hack The Box
    Follow me on Twitter: @C_3PJoe

  • After 4 days trying to break priv escilation, i got my first root in HTB. Big thanks to @ashishjv1 for the very valuable tips

  • @Shado7836 said:
    After 4 days trying to break priv escilation, i got my first root in HTB. Big thanks to @ashishjv1 for the very valuable tips

    :)

  • Guys, when you own a user, dont change the password. i had to reset to get the user password working.

    Hack The Box

  • Ok I think I need some help with root.

    I have written up a three step plan on how to get root, and I dont see why it isnt working.

    1) Start the server of the service in question on my local machine. Set it to be :1

    2) Create tube to securely transmit information through from localhost to poison, collecting from the port that :1 will be transmitting on on my machine to the same port on poison.

    3) Connect to the service running on localhost:1

    4) Sit and watch as the terminal cursor blinks at me and nothing happens. It does not ask me for a password like it does if I connect to localhost:2 (which is NOT being pumped out the tunnel fyi)

    What am I missing here?

    Also on the file from the zip; I can see it is a passwd file for a special service, but does it go on my machine, or on poison?

  • r00ted. Again a tough fight, but learned a lot. Thanks for the box :-)

    hopihallido

  • edited July 2018

    Can someone help me with root? I already unzipped the secret file and I think I also found the right command to use it with. But I always get "Authentication failed". Can someone send me a pm?

    Edit: Finally rooted it :)

    cortex42

Sign In to comment.